The Fermenting Cellars, Distillery District, Toronto

19th September

Thursday

CLOUDSEC 2019

PICTURE THIS! See. Secure. Go Further.

Where are you on your Cloud journey? Are you ready for tomorrow’s security challenges?

Experts from all backgrounds come together at #CloudSec 2019 to give you and your team insights
on the future of cloud security. Gain hands-on experience with tools and techniques from our
#CLOUDSEC Challenge. Leave with a clear vision for your organisation’s cloud strategy and
security.

Picture an organisation that can prepare for, withstand, and recover from any cybersecurity
threat —one that's so resilient that nothing can hinder its success. Picture how it can easily
adapt to increasingly complex and shifting IT environments. Picture how it sees cybersecurity as
a strategy, and how it has a clear vision of how ever-changing threats and risks should be
managed.

Picture that organisation as your own.

The computing landscape continues to introduce challenges amidst exciting new technologies,
hyper-connectivity, and benefits. Organisations need to see order in chaos, see things from a
different perspective, and even step back to see the big picture. Because having visibility
through the power of collective and connected intelligence helps them build cyber resilience,
and allows them to go further and do more.

Welcome to CLOUDSEC 2019.

CLOUDSEC Canada 2018 Highlight Video

Agenda

8:15 - 9:15

Registration & Networking BreakfastSolution Centre
Opens

9:15 - 9:30

Welcome Address

Jim Love, CIO &
Chief Content Officer – IT World Canada

9:30 - 10:10

CloudSec Opening Keynote

Lakshmi
Hanspal, CISO, Box

Content truly is king. And the technology we use to create and manage
it is now the most important asset of any organisation. However, content management is only
one part of the puzzle: the other is security. As geographical borders dissolve with growing
cloud adoption, protecting your company's most important information becomes even more
critical. In this session, Box CISO, Lakshmi Hanspal, will discuss security in the cloud era
- specifically, the importance of balancing end-userability against the back-drop of growing
privacy and compliance regulations, and at a time of unprecedented digital insecurity.

In this upfront discussion with cloud security guru, Mark Nunnikhoven,
we explore the reality of where Canadian organizations hold up in the race to the cloud and
what is keeping security and dev-ops teams from moving to the next level.

12:00 - 12:45

Lunch and Solution Centre

12:45 - 13:45

The Future is Here:
Containers/Serverless Security 101

Vipin Mohan,
Global Segment Lead for Containers and Serverless, AWS

Containers and serverless are fundamental to microservices, an
architectural style where applications are made up of loosely coupled services or modules.
Securing microservices-based applications deviates from traditional perimeter security
approaches and represents a new ecosystem of operational and security paradigms. One of the
challenges that customers face is how to secure their containers and serverless applications
because traditional security practices and tools are designed for applications running
directly on the host instances. In this session, we will provide best practices and
patterns, walk through models for securing containers and serverless services using a
combination of secure coding practices with partner code libraries, DevOps principles and
code/container version control using code. You will walk away with an understanding of
approaches to secure container and serverless applications built using services such as
Amazon ECS, AWS Fargate, Amazon EKS, and AWS Lambda.

Over the coming months, our Canadian govt is seeking to develop
made-in-Canada policy and legal solutions that can de-risk data access and use by business
to foster trust and competition in the marketplace. This is in response to the regulatory
and policy developments in the EU, triggering responses around the world.

As part of Canada’s continuing dialogue on our national digital strategy, business leaders,
government, and other experts have come together to foster consensus on a package of smart
updates to enable Canada’s legal and regulatory frameworks to enable innovation while
keeping in mind the growing and ever increasing need to protect personal information.

This talk will inform our audience of the initiative by the federal government of a new
Digital Charter which will be contrasted and compared against privacy and regulatory trends
from an international perspective.

Security is often misunderstood and addressed in the last stages of a
build. Operationally, it’s ignored until there is an emergency. In this talk, we review a
few advanced security processes and discuss how to easily automate them using common tools
in the Cloud. This approach helps you and your team increase the security of your build
while reducing the overall operational requirement of security in your stack. Leave this dev
chat with everything you need to start automating security.

15:00 - 16:30

Networking Reception - Solutions Centre

13:00 - 15:00

#CLOUDSEC Challenge

Protecting your company's critical infrastructure is one of the key
challenges today. Knowing the techniques and tools hackers use to attack a cloud environment
is critical for implementing the appropriate measures to protect from such attacks.

Join this 2-hour challenge to defend against cyberattacks with your team in a controlled
environment using DevOps tools and techniques. The aim is to win the Threat Defense
Challenge, by scoring the most points from the series of hacking and defending obstacles.
Prizes will be award to the winning team.

*Please bring your laptop!

15:00 - 16:30

Networking Reception - Solutions Centre

2019 Speakers

Adam Boyle

Product Management Head – Hybrid Cloud Security, Trend Micro

View Bio

Fawn Annan

President, Chief Marketing Officer and Group Publisher of IT World Canada/ IDG Canada

Global Segment Lead for Containers and Serverless, Amazon Web Services

Registration

Sponsors

Hosted by:

Sponsors:

Registration Enquiries

+1-877-338-6753

Sponsorship Opportunities

About Distillery District

The Distillery District is inspired blend of Victorian Industrial architecture and stunning 21st
century design and creativity. It is a dramatic fusion of old and new where people can
experience
new ideas, new foods, new designs and new ways of living and working.

The Fermenting Cellars, Distillery District, Toronto

19th SeptemberThursday

About Distillery District

The Distillery District is inspired blend of Victorian Industrial architecture and stunning 21st
century design and creativity. It is a dramatic fusion of old and new where people can
experience
new ideas, new foods, new designs and new ways of living and working.

The Fermenting Cellars, Distillery District, Toronto

19th September Thursday

Conference

Event Speakers

Randy Purse

CD, PhD, CTDP

Randy is a cyber security training and education specialist,
researcher and author. After 26 years in the Canadian military and almost 10 years with the
Communications Security Establishment/Canadian Centre for Cyber Security, Randy recently assumed
the role of Director of Cybersecurity Standards with the Information Technology Association of
Canada. He is the project lead for ITAC’s national cyber security workforce development
initiative. He is also a consultant and facilitator at the Rogers Cybersecure Catalyst where he
helps address private and public sector cybersecurity training needs.

Conference

Event Speakers

Fawn Annan

President, Chief Marketing Officer and Group Publisher of IT World Canada/ IDG Canada

Fawn Annan is the President, Chief Marketing Officer and Group
Publisher of IT World Canada/ IDG Canada. She is also partner and CMO for Amazing! Agency, a
content agency located in Haliburton, Ontario.

Ms. Annan is Chair of the Canadian Channel Chiefs Council, sits on the Ontario Board of the
Information Technology Association of Canada (ITAC) and is Vice-Chair on the national board of
Canadian Women in Communications and Technology (WCT) as well as part of the Advisory Council
for CATA (Canadian Advanced Technology Association).

In 2012 she received the Queen Elizabeth Diamond Jubilee Award for her contribution to the IT
industry. In 2017 she was awarded the MISA/ASIM Dennis Steen Award and the RBC/CATA Sara Kirke
Award for Entrepreneurship and Innovation recognizing her contributions to the industry.

@fawnannan
ca.linkedin.com/in/fawnannan

Conference

Event Speakers

Sylvia Kingsmill

Sylvia has over 15 years’ experience providing strategic, privacy
risk management and compliance advisory services, serving both the public and private sectors.
She advises executive teams on data-driven digital strategies to support major business
transformations in alignment with new regulations, policy and governance trends, having
successfully deployed national health registries, analytics platforms and digital banking
technologies. Sylvia is a lawyer by training and often speaks on the intersection of emerging
technologies, privacy and regulatory expectations, including breach response.

Conference

Event Speakers

Fernando Montenegro

Senior Analyst, 451 Research LLC

Fernando is a Senior Analyst on the Information Security team,
based in Toronto. He has broad experience in security architecture, particularly network
security for enterprise environments. He currently focuses on covering vendors and industry
events in the endpoint security and cloud security spaces.

Prior to joining 451 Research, Fernando worked in pre-sales and delivery roles with vArmour,
RSA, SilverTail, Crossbeam and Hewlett-Packard.

His areas of interest include security economics (particularly behavior economics), data science
and network security. Fernando holds a BSc. in Computer Science and several industry
certifications.

Twitter: @fsmontenegro

Conference

Event Speakers

Sylvia Kingsmill

Sylvia has over 15 years’ experience providing strategic, privacy
risk management and compliance advisory services, serving both the public and private sectors.
She advises executive teams on data-driven digital strategies to support major business
transformations in alignment with new regulations, policy and governance trends, having
successfully deployed national health registries, analytics platforms and digital banking
technologies. Sylvia is a lawyer by training and often speaks on the intersection of emerging
technologies, privacy and regulatory expectations, including breach response.

Conference

Event Speakers

Mike Foley

Staff Technical Marketing Architect, VMware

Mike Foley is a Staff Technical Marketing Architect for vSphere
Security at VMware.

His principal goal is to help IT and VMware administrators build more-secure platforms that meet
or exceed the operational challenges of IT while still standing up to the scrutiny of security
teams. He is the author of whitepapers on hypervisor security and virtual machine encryption,
the vSphere Security Configuration (formerly “Hardening”) Guide. He is also a popular speaker at
industry conferences such as VMword, RSA Conference and others.

Previously, Mike was on the evangelist team at RSA, where he concentrated on virtualization and
cloud security and also served as a member of the product architect team. Mike contributes to
the VMware vSphere and security blogs and has spoken on the topic of virtualization security at
EMCworld, RSA Conference, and VMworld, as well as at other VMware events.

Mike was awarded a patent (8,601,544) in December 2013 for dual-band authentication using the
virtual infrastructure.

Conference

Event Speakers

Lakshmi Hanspal

CISO, Box

Lakshmi joined Box in January 2019 bringing more than 20 years of
experience in information security, risk management and privacy. In the role of CISO, she is
responsible for Box's cyber security practice, security operations and data and platform
protection. Prior to joining Box, Lakshmi served as Chief Security Officer at SAP Ariba. Prior
to that she the senior leader for Information Security and Risk at PayPal and spent 10 years at
the Bank of America as a Senior Vice President.

Conference

Event Speakers

Laura Payne

Director, Information Security Services, Bank of Montreal

Laura holds a degree in Systems Design Engineering has over a
dozen years of
experience in the financial services industry covering a variety of roles in IT
operations and information security. Laura also serves on the advisory
committees of SecTor (Canada’s Premier IT Security Education Conference)
and Seneca College’s Bachelor of Technology, Informatics and Security
program.

Conference

Event Speakers

Jim love

CIO and Chief Digital Officer ITWC, publisher of ITWorldCanada.com

Jim Love is an IT leader, consultant, writer and Internet
journalist with 35 years’ experience across a variety of business and industry verticals. Jim
has worked as an executive and a consultant for many large companies in Canada and
internationally. Currently he is the CIO & Chief Digital Officer at ITWC — Publisher of
CanadianCIO, Computer Dealer News (CDN), Computing Canada, Direction Informatique (DI),
ITWorldCanada.com and ITBusiness.ca — and the leading provider of IT related events in Canada.

Conference

Event Speakers

Adam Boyle

Product Management Head – Hybrid Cloud Security, Trend Micro

Adam Boyle is Head of Product Management for the Hybrid Cloud
Security Business at Trend Micro. His passion is in listening to customers and working with them
closely, and constantly, to solve their most important security challenges related to DevOps,
Automation, Cloud Native Applications (using Containers and Serverless), and the Hybrid Cloud.
He lives in Ottawa, Ontario, Canada.

Conference

Event Speakers

Marcia Sequeira

Country Manager - Canada, Trend Micro

Marcia has 20 years of experience in global strategic business
development and global sales. She has created, led, and fostered worldwide long-term
partnerships, where she has honed her skills in collaboration, adaptation, and communication.
Marcia currently holds the role of Country Manager and VP of Trend Micro Canada, and is
responsible for fully managing and executing Trend Micro’s Canadian Business Unit initiatives,
strategies and goals including sales, marketing, operations, and channel. In today’s changing
threat landscape, Marcia helps leading enterprises and public organizations to build a more
secure future.

Conference

Event Speakers

Vipin Mohan

Global Segment Lead for Containers and Serverless, Amazon Web Services

Vipin Mohan is the Global Segment Lead for Containers and
Serverless at Amazon Web Services. He drives the product roadmap and leads the partnership and
marketing strategy for AWS' container and serverless services. Prior to his current role, he
spent several years building exciting products with microservice-based architectures for
information retrieval, machine learning and natural language processing. Outside work, he loves
reading about financial investing and entrepreneurship (currently reading The $100 Startup), and
in exploring the world through the eyes of his 2-year old daughter.

Conference

Event Speakers

Mark Nunnikhoven

Vice President – Cloud Research, Trend Micro

Mark Nunnikhoven explores the impact of technology on individuals,
organizations, and communities through the lens of privacy and security. Asking the question,
"How can we better protect our information?", Mark studies the world of cybercrime to better
understand the risks and threats to our digital world.

As the Vice President of Cloud Research at Trend Micro, he applies this approach by helping
organizations around the world use technology transform their work. This provides a unique
opportunity to improve their approach to security and privacy while simplifying operations and
focusing on their core goals.

Mark is a forensic scientist and security leader who has spent more than 20 years helping to
defend private and public systems from cybercriminals, hackers, and nation states. A
sought-after speaker, writer, and technology pundit, his message is simple: secure and private
systems are a requirement in today's world, not a luxury.

Conference

Event Speakers

Michael Ball

CISO and Cyber Security Consultant

Michael brings 30+ years of experience in Information Systems -
Architecture / Operations / Governance. The past 25 years his expertise has focused on IT
Security in the finance and insurance industry. He plays well in the sandbox with both auditors
and C-Level Execs.